Linköping University is a service directed towards students and employees.
We use this service to control the assurance level of a user before activating the
account (LiU-Id) or resetting the password of the account (LiU-Id). The user needs to
successfully sign in to an external Identity Provider with an account with at least AL2
to complete the activation/password reset.
Personal data are being transferred from the identity provider (your login service) to
the service to ensure that you have the correct assurance level.
When logging in to this service, the following personal data are requested from the
identity provider you use:
Personal data | Purpose | Technical representation |
---|---|---|
The assurance level of the login | To verify that the user has the correct assurance level to complete the process. | eduPersonAssurance |
The Swedish personal number | To map the login to the user’s account in LiU’s account catalogue. | norEduPersonNIN |
The Swedish personal number or equivalent | To map the login to the user’s account in LiU’s account catalogue. | personalIdentityNumber |
No data sent will be saved in at Linköping University. The data is only used to verify and identify the user and the user account (LiU-Id)
Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Union institution or body.
For access, rectification and erasure of your personal data, contact the Personal data controller.
Rectification of personal data that was transferred at the moment of login has to be
done in the identity provider that you use to log in.
Personal data controller for the processing of personal data is Linköping University,
Sweden. If you have questions about how personal data are processed within the
service, please contact sesam@it.liu.se.
Contact information for Linköping University data protection officer can be found at
https://insidan.liu.se/dataskyddsforordningen/kontaktpersoner-gdpr?l=en&sc=true
This service complies with the international framework GÉANT Data Protection Code of Conduct (http://www.geant.net/uri/dataprotection-code-of-conduct/v1) for the transfer of personal data from identity providers to the service. This framework is intended for services in Sweden, the EU and the EEA that are used in research and higher education.